Op 6 okt. 2022 om 13:50 heeft Patrik Peng het volgende geschreven:
Hi there
I'm trying to create a multi user setup with Apache/2.4.54,
mod_proxy_fcgi and PHP-FPM on a FreeBSD machine.
I already got a working solution with php-fpm running and the
following
> Op 31 jul. 2022 om 08:47 heeft Ori Shaines het volgende
> geschreven:
>
>
> Hi Apache user support,
>
> I am posting this because the official Apache support has suggested me, as
> you might be able to provide me what I look for.
>
> Well, as you can see, I am reaching out from ThriveD
Hi!
> Op 13 mrt. 2022 om 15:54 heeft Walter Hop het
> volgende geschreven:
>
> Hi all,
>
> I am trying to strengthen my HTTPS setup.
>
> One security-checker which is popular in my country is internet.nl.
And rightly so!
> One thing I have a problem with is their check “Key exchange parame
Thanks,
Simon
--
With kind regards,
William Edwards
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
/mass-hosting ("HA
with Redis").
Thank you!
Cheers,
-Felipe Gasper
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
Hi,
It seems to be you’re asking three questions.
> Op 9 dec. 2021 om 19:49 heeft Brian Bayachek het
> volgende geschreven:
>
>
> Hi everyone,
>
> Can anyone recommend a program or advice that I can use to monitor all of my
> web servers? (IIS, Apache, Tomcat). I am more focused on Apache
> Op 17 nov. 2021 om 05:23 heeft Gabriel Santos
> het volgende geschreven:
>
>
> Hi,my name is Gabriel and i want to build a apache server with SSLv2
> technology (because thee service i want to use only supports SSLv2)
Use another service.
> and i having errors with many openssl versions(
> Op 18 okt. 2021 om 11:27 heeft Patrick Verdon
> het volgende geschreven:
>
>
> Hi All,
>
> I'd appreciate some feedback on an issue I'm experiencing. I've spent quite
> some time researching the problem as it causes a serious outage in our
> application. I've searched the Web, Stack Over
cker, but
I can't find it anymore.
--
With kind regards,
William Edwards
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
https://httpd.apache.org/docs/2.4/mod/mod_proxy.html
On Sat, Mar 6, 2021 at 9:44 PM William Dumangeng Jr
wrote:
> Yes, Apache httpd can be a Reverse proxy too using *"ProxyPass" *directive
> in the config file.
>
> On Sat, Mar 6, 2021 at 9:35 PM Jason Long
> wrote:
>
Yes, Apache httpd can be a Reverse proxy too using *"ProxyPass" *directive
in the config file.
On Sat, Mar 6, 2021 at 9:35 PM Jason Long
wrote:
> Thanks.
> Apache can't do it?
>
>
>
>
>
>
> On Saturday, March 6, 2021, 05:02:44 PM GMT+3:30, William Duman
Reverse proxy software like Nginx, ATS or Varnish. Install any of those
software and the WAF in the same host.
On Sat, Mar 6, 2021 at 7:07 PM Jason Long
wrote:
> Hi William,
> Thank you.
> I need your second diagram:
>
> The Internet--->WAF and Reverse Prox(Public
>
lic IP address? Or WAF needs a public IP and Web
> server need a local IP?
>
> Excuse me if my questions are odd.
>
> Thank you.
>
> -
> To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
> For additi
I'm having trouble getting LDAP group authorization working in combination with
using AuthnProviderAlias.
When I include the LDAP conf lines in the block everything works as
expected. If I use a reference to an
AuthnProviderAlias, it does not work.
I'm experienced, but relatively new to Apache
ient 172.31.38.27:59548] AH00566: request failed:
> malformed request line
>
> Thanks !
>
> On 17 Oct 2019, at 15:52, William A Rowe Jr wrote:
>
> On Thu, Oct 17, 2019 at 9:04 AM David Tkacik <
> dtka...@healthcoachinstitute.com> wrote:
>
>>
>> But when I try
On Thu, Oct 17, 2019 at 2:06 AM Marian Ion wrote:
>
> Yes, that's why I set "SSLStrictSNIVHostCheck On" -> according to the
> documentation "If set to on in the default name-based virtual host,
> clients that are SNI unaware will not be allowed to access any virtual
> host".
> I set it in the def
On Thu, Oct 17, 2019 at 9:04 AM David Tkacik <
dtka...@healthcoachinstitute.com> wrote:
>
> But when I try to connect I’m getting 400 Bad Request
>
Change your Apache LogLevel to 'debug' and repeat the attempt, examine the
error log and feel free to quote it here for further guidance.
It's spelled out right in the docs, that header is consumed as decoded by
httpd, and the effective remote IP address is what it decoded. If you want
it seen by Tomcat, don't do that.
https://httpd.apache.org/docs/2.4/mod/mod_remoteip.html#processing
On Mon, Sep 23, 2019, 12:45 John Pyeatt wrote:
On Fri, Sep 13, 2019 at 3:46 PM Jim Albert wrote:
> In use of CentOS7 servers and the included apache, I'm moving to
> Apache/2.4.6
>
> It appears something related to ErrorLog has changed.
> I'm using what I have always used:
> ErrorLog "logs/error_log"
>
> and I do see messages going to logs/er
I am trying to compile http-2.4.41 and it works on Fedora 29 and Centos
7 but
on Centos 6 and Ubuntu 18 the compile generates the following error:
/usr/local/apache2/build-1/libtool --silent --mode=compile gcc
-std=gnu99 -g -O2 -pthread -DLINUX -D_REENTRANT -D_GNU_SOURCE
-I. -I/h
Check the respective versions of apr and apr-util, perhaps that is the
underlying change, since this is arch-specific?
You can checking any existing MaxMemFree
https://httpd.apache.org/docs/2.4/mod/mpm_common.html#maxmemfree
directive and perhaps toggle it down to 1MB (value 1024) persisting betwe
him/his)
Sr. System Administrator
Distributed Application Platform Services
Northwestern University
1800 Sherman Ave.
Suite 6-600 – Box #39
Evanston, IL 60201-3715
darryl.ba...@northwestern.edu<mailto:darryl.ba...@northwestern.edu>
(847) 467-6674
From: "Dorrian, William" mailto:wd
Looks like that didn’t work, either. I suspect that the “?” and “=” are causing
issues.
From: Dorrian, William
Sent: Tuesday, August 13, 2019 3:52 PM
To: users@httpd.apache.org
Subject: RE: [users@httpd] How can I simplify this URL to just the hostname
with rewrite rules?
Darryl,
Thanks for
m/his)
Sr. System Administrator
Distributed Application Platform Services
Northwestern University
1800 Sherman Ave.
Suite 6-600 – Box #39
Evanston, IL 60201-3715
darryl.ba...@northwestern.edu<mailto:darryl.ba...@northwestern.edu>
(847) 467-6674
From: "Dorrian, William" mailt
So - I'm the administrator of a Java application which has a URL similar to the
following:
https://test.thing.seabass.com/q3/app?service=external/EmployerPages:DudeLogin
Can't have them change it, and there's no way to simplify.
I'd like to redirect the URL above to:
https://test.thing.seabass
On Wed, Jul 31, 2019 at 7:27 PM Nigel B. Peck wrote:
>
> Setting up LD_LIBRARY_PATH in the envvars seems the best way to go in my
> case then, with the need to avoid a system-wide install. Good to have
> understood the options better.
>
w.r.t. Apache httpd, there is an installed script called ap
mod_fastcgi is long abandoned and was not a part of the httpd project. A
derivative work mod_fcgid is maintained (lethargicly) by the project as a
separate download ... https://httpd.apache.org/mod_fcgid/ and a new *core*
module was introduced, mod_proxy_fcgi that is part of the standard
distributi
On Tue, Jun 18, 2019 at 6:41 AM Richard
wrote:
>
> > Date: Tuesday, June 18, 2019 05:38:50 +
> > From: Satish Chhatpar 02
> >
> > How to patch Apache 2.4.6 to latest release on RHEL 7.4?
> >
>
> RedHat backports patches to the base version, keeping the version
> number stable within an OS re
On Mon, Jun 3, 2019 at 11:08 PM Geoff Russell
wrote:
> Hi Douglas,
>
> Thanks for your help. I've spent about 6 hours on this problem and it
> has just vanished ...
>
> I tried elinks as a substitute for telnet ... telnet does succeed in the
> socket handshake, to is useful for quick test of th
You need to build OpenLDAP against the OpenSSL in use (this is also true of
curl for mod_md.) Every bit including APR-util are all going to need to
agree on the flavor of OpenSSL in use.
On Fri, May 3, 2019, 14:12 ken edward wrote:
> Hello,
>
> I successfully built a FIPS openssl based mod_ssl
On Wed, Apr 17, 2019 at 4:08 PM Rose, John B wrote:
> Why would ssl.conf certificate settings override the certificate settings
> in a specific virtual host config file?
>
The concept is inheritance. Picture all the #include'ed .conf files
flattened at the global scope, unless you actually do an
On Wed, Apr 10, 2019 at 7:30 PM Du Hao wrote:
> Is Apache HTTP Server going to drop TLSv1.2 support in near future? If
> not, it is a bug that affects user who voluntarily choose to not use
> TLSv1.3.
>
Because 2.4 dates all the way back to the now-unsupported 0.9.8 lifecycle,
it seems unlikely
On Wed, Apr 10, 2019 at 10:48 AM Du Hao wrote:
>
> I suspect there is a bug involved in the SSL client verification type
> changing and the re-negotiation flow. While I admit it may be a corner case
> but the original use case is very crucial to my current user base. I
> checked the Bug database
In general, problems which stretch back to the initial 2.4.1 or commonly
deployed 2.4.3 might also affect 2.2.x or 2.0.x. As users have had almost a
decade to adjust and these versions are EOL, the project seems unlikely to
care, and notices are everywhere that the old flavors are no longer
evaluat
The requests processed asked to GET and POST to / in HTTP/1.1 protocol.
Why do you suppose your server should reject a request for the content '/'?
Seems like a very strange concern.
Depending on the handler charged with processing '/', the remaining '?'
query args are interpreted, or generally i
On Tue, Apr 2, 2019 at 2:35 AM Steffen
wrote:
> The ASF HTTPD project did not mention security vulnerabilities fixed in
> the initial changelog 2.4.39.
To be 100% accurate, the ASF HTTP Server project had not announced the
release of 2.4.39. It had concluded a vote, but only the RM's announceme
On Tue, Jan 29, 2019, 14:16 Jerry Malcolm On 1/29/2019 12:31 PM, William A Rowe Jr wrote:
>
> On Tue, Jan 29, 2019 at 12:27 PM Jerry Malcolm
> wrote:
>
>> I'm running a very recent version of WAMP x64. I inherited an 'ancient'
>> php app that requires php
On Tue, Jan 29, 2019 at 12:27 PM Jerry Malcolm
wrote:
> I'm running a very recent version of WAMP x64. I inherited an 'ancient'
> php app that requires php 5.2 and no higher. I went through the
> process of adding php 5.2 to WAMP, and I copied php5apache2_4.dll from
> php 5.6 folder and did th
Compression on-the-fly is generally unwise. Incrementally better
compression comes at an escalating server cpu penalty. There might be some
way to trigger mod_deflate using mod_lua or mod_rewrite if you were
adventurous, but see this page for info about expr tests for filesize you
can use to toggle
On Tue, Jan 8, 2019 at 10:48 AM wrote:
>
> I have migrated a user module mod_example from 1.3 to 2.4. But when I try
> to start the apache it is giving a segmentation fault and creating a core.
>
> Following is the stacktrace while debug:
> t@1 (l@1) signal SEGV (no mapping at the fault address)
On Mon, Dec 10, 2018 at 11:11 AM Hemant Chaudhary <
hemantdude.chaudh...@gmail.com> wrote:
> Hi,
>
> I have updated apache-2.4.29 to apache-2.4.37 but still I am not able to
> graceful shutdown in debug mode.
>
> Can you please tell me how should achieve it. ? or let me know the
> function which I
On Fri, Nov 30, 2018 at 1:40 PM Jack M. Nilles wrote:
> # http redirect
>>>
>>>
>>>
>>>
>> Note you have an error there, the incoming request will be matched to
only one list of matching VirtualHosts, host1.com alone on the first,
and host2 alone on the second list. You surely meant these to sh
You will have to go out of your way to disable TLS tickets. In the course of
normal operations, you won't see many cached TLS sessions at all, because
the ticket is returned to the client, and the client re-presents that
ticket to
reestablish the session; no session caching required.
http://httpd.
Graceful shutdown is a WINCH signal.
In -X mode you don't have a parent -> children relationship with httpd,
just the worker process. It isn't for normal operation.
On Thu, Nov 22, 2018 at 7:28 AM Hemant Chaudhary <
hemantdude.chaudh...@gmail.com> wrote:
> Hi,
>
> I am not able to shutdown apa
il. Open with Caution"
>
> Do you use a "similar" compiler for httpd and the module?
> On Wed, Nov 14, 2018 at 1:56 PM wrote:
> >
> > Hi All,
> >
> > Thank you Rick and William for helping me out.
> >
> > As suggested I had use the apxs to build a
On Tue, Nov 13, 2018 at 11:04 AM wrote:
>
> Our main objective is to migrate to 2.4. Since I faced an issue while
> doing so, I thought it would be better to first migrate to 2.0 then to 2.2
> and finally to 2.4.
>
While that is one approach, I'm afraid it won't speed up your exercise; it
is mos
On Mon, Nov 12, 2018 at 10:38 AM wrote:
>
> I have installed and set up httpd 2.0.65 version of apache server on
Solaris 11
Speaking for most readers of this list, we wonder why... what would lead
you to such a silly act? Is this in the syllabus/exercises inflicted by a
cruel
teaching assistant?
On Mon, Nov 5, 2018 at 1:25 AM Andrew Joshwa <4andrewjosh...@gmail.com>
wrote:
> Hi,
>
> Can anyone please help me to get the patch for the CVE-2016-4975.
>
Yes, http://www.apache.org/dist/httpd/, obtain and build the latest version
of 2.4.
Or if you want to avoid the TLS 1.3 enhancement, you may
It is a confusing message. Your mail server is rejecting some messages sent
to you by the list server, perhaps because it detects spam, perhaps because
there was a short window the server was down/in maintenance.
On Sat, Nov 3, 2018, 08:26 Leland Your messages are the only ones being bounced. It'
Hi Simon,
you might want to express your interest/RFE to the d...@apr.apache.org list,
since that is where the apr_* functions are maintained, and enhancement
requests are always welcome.
On Thu, Oct 25, 2018 at 8:37 PM Simon Walter wrote:
> I see apr_escape_urlencoded, but not apr_unescape_ur
A number of regressions are fixed in 2.4.35, please retest against that
version.
On Fri, Oct 12, 2018, 15:27 Schettler, Marty L. <
martin.l.schett...@leidos.com> wrote:
> My reverse proxy config doesn’t work with SSL any more as I try to upgrade
> from 2.4.29 to 2.4.34.
>
>
>
> My config:
>
>
>
I've looked at the httpd and apr code, what source package were you using
which started from a default MAX_IOVEC_TO_WRITE (APR_MAX_IOVEC_SIZE?) of 6?
TIA,
Bill
On Thu, Sep 27, 2018 at 11:59 AM Hemant Chaudhary <
hemantdude.chaudh...@gmail.com> wrote:
> Hi,
>
> I have solved the problem by chang
libsso apr-util and httpd are built with 1.0.0 and
mod_ssl with 1.1.0
Guess I will try to contact some of the sites providing httpd 2.4.x
binaries with 1.1.0 support and ask about how they are handling apr-util.
Thanks,
Matt
On Tue, Sep 18, 2018 at 2:04 PM, William A Rowe Jr
wrote:
>
On Tue, Sep 18, 2018 at 10:24 AM Matthew Goebel wrote:
> Ah, and I've been looking at httpd instead of mod_ssl.so, this does in
> fact appear to be working... ugh... never mind me.
>
No worries, but please note that apr-util can be built linking to openssl,
and if that optional apr_crypto_openss
On Wed, Sep 5, 2018 at 10:11 PM, alchemist vk
wrote:
> Hi William,
> Sorry for late response.. I appreciate your response.
> Small clarification: You meant to say, with space as delimiter, httpd
> parses will consider space separated tokens as each individual httpd
> dir
The proxy response input is dechunked as it is retrieved from the back end.
Any chunking to the client is introduced by httpd after filtering.
It may be that the request deflate and inflate filters have comingled a
zlib stream context?
On Tue, Sep 4, 2018, 12:43 Maarten Boekhold wrote:
> Hi,
>
On Wed, Aug 29, 2018 at 3:12 AM, Audebert Bernard
wrote:
>
> The request work fine with Authorization header line of up to at least
> 5674 bytes but break with Authorization header of more than 6178 bytes with
> the following answer :
>
> Here is an excert of the server-info page we have activate
A good argument for following httpd documented convention.
If you want to continue exploring, you would want to quote the cipher
string, since httpd would take apart unquotes, space separated tokens as
different httpd directive arguments, and you surely don't want that.
On Sat, Aug 25, 2018, 20:0
ns of other posts asking the same question.
It's an entirely reasonable extension of FTP, which if it existed,
mod_proxy_ftp could be enhanced to support.
On Jul 25, 2018 23:34, "William A Rowe Jr" wrote:
If I understand your question, mod_proxy_ftp does not speak ftp to the
If I understand your question, mod_proxy_ftp does not speak ftp to the
client; only between the httpd server and backend. So the only data channel
is the one established by httpd to shuttle the data.
On Tue, Jul 24, 2018, 12:28 Harbo, Peter wrote:
> The mod_proxy_ftp module is working fine for
On Mon, Jul 16, 2018 at 4:53 PM, James Moe
wrote:
>
> After the upgrade from v2.4.23 to v2.4.33, https requests yield error
> 403:
> Access forbidden!
> You don't have permission to access the requested directory. There is
> either no index document or the directory is read-protected.
>
Likely
On Sun, May 27, 2018 at 10:00 PM, Simon Walter wrote:
> On 05/27/2018 05:49 PM, Nick Kew wrote:
> >> On 27 May 2018, at 03:40, Simon Walter wrote:
> >>
> >> Hi everyone,
> >>
> >> First of all, I am not sure if this is the right place to ask this.
> >> Please send me to the appropriate mailing l
Your next thing to test, from a vanilla/completely reset browser, would be
to load up these corresponding cert+key and ca chain files into that blank
slate, and ensure that these credentials actually work against your backend;
* SSLProxyMachineCertificateFile
D:\sys-projects\aaa\Apache24\Apache24
On Sun, May 13, 2018 at 8:24 AM, CodeingBoy wrote:
> Hello William, thanks for your information. I have completed the
> translation progress of error messages.
> I have translated these message to both Simplified Chinese(zh-cn) and
> Traditional Chinese(zh-tw). One thing should b
Hi Sharan,
it's usually more efficient to ask the community directly about
project-specific
asks. I've gone ahead and forwarded your note to the users and dev lists
where we are more likely to find the right resources. I personally
know at least
a half dozen httpd committers proficient in French,
According to my notes, that is 2.2.15.
As noted previously, turn to RH for support. The EOL was back in July and
we will stop making public comments or security advisories once we have
fewer than three active project members attending to this legacy version.
On Nov 28, 2017 06:47, "chetan jain"
Actually, that was in APR-util 1.6.1, see the APR release announcement
and Craig's
users@httpd post.
On Wed, Oct 25, 2017 at 4:02 PM, Craig Young wrote:
> I’m not sure if this is what is referred to in the Apache 2.4.29
> announcement, but please note that the Apache Portable Runtime v1.6.3 re
On Mon, Oct 23, 2017 at 11:53 AM, William A Rowe Jr wrote:
> On Mon, Oct 23, 2017 at 11:45 AM, Jim Jagielski wrote:
>> Apache HTTP Server 2.4.29 Released
>>
>> October 23, 2017
>>
>> The Apache Software Foundation and the Apache HTTP Server Proje
On Mon, Oct 23, 2017 at 11:45 AM, Jim Jagielski wrote:
> Apache HTTP Server 2.4.29 Released
>
> October 23, 2017
>
> The Apache Software Foundation and the Apache HTTP Server Project
> are pleased to announce the release of version 2.4.29 of the Apache
> HTTP Server ("Apache"). This
For anyone not subscribed to announce@, sorry I hadn't passed this on...
-- Forwarded message --
From: "William A Rowe Jr"
Date: Oct 5, 2017 13:48
Subject: [Announcement] Apache HTTP Server 2.4.28 Released
To:
Cc:
Apache HTTP Server 2.4.28 Release
Copying users@ in case some of you are Flood subproject users,
please make your voices heard.
Thanks,
Bill
-- Forwarded message --
From: William A Rowe Jr
Date: Thu, Sep 14, 2017 at 10:48 AM
Subject: Re: Flood 0.4 status? (was: flood 0.4 was never signed for?)
To: httpd
I
What's our position on this? Is it time to declare flood abandoned?
Are there any users of this tool who want to contribute to maintaining it?
Offhand, I expect it does not support TLS/SNI. Nor HTTP/2.
If abandoned, we can simply remove www.a.o/dist/httpd/flood
to resolve Daniel's issue. If not
On Wed, Aug 2, 2017 at 6:24 AM, Eric Covener wrote:
> On Wed, Aug 2, 2017 at 5:21 AM, Hemant Chaudhary
> wrote:
>> Hi
>>
>> I have ported apache on my machine. I have copied bin,lib.conf,modules,
>> htdocs,logs to another location. Now I want to run my apache in new location
>> with these things
CVE-2017-9788: Uninitialized memory reflection in mod_auth_digest
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected:
all versions through 2.2.33 and 2.4.26
Description:
The value placeholder in [Proxy-]Authorization headers
of type 'Digest' was not initialized or rese
CVE-2017-9789: Read after free in mod_http2
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected:
httpd 2.4.26
Description:
When under stress, closing many connections, the HTTP/2
handling code would sometimes access memory after it has
been freed, resulting in potential
On Tue, Jul 11, 2017 at 9:13 AM, Hajo Locke wrote:
>
> Am 11.07.2017 um 15:58 schrieb Eric Covener:
>>
>> On Tue, Jul 11, 2017 at 9:41 AM, David Copeland
>> wrote:
o HTTP/2 will not be negotiated when using the Prefork MPM
>>>
>>> I'm wondering what the reason for this is?
>>
>> In the
July 11, 2017
The Apache Software Foundation and the Apache HTTP Server Project
announce the release of version 2.2.34 of the Apache HTTP Server
("Apache"), the final maintenance release of the 2.2 series. No
further 2.2 releases are anticipated. This version of Apache is
principa
On Fri, Jun 23, 2017 at 11:22 AM, Eric Covener wrote:
> On Fri, Jun 23, 2017 at 10:55 AM, Martin Knoblauch wrote:
>> Apparently apr-util no longer bundles "expat". So my question: what is the
>> correct/intended way to work around this?
>
>
> apr-util accepts a --with-expat. If you build apr-ut
On Wed, Jun 21, 2017 at 10:39 AM, Eric Covener wrote:
> On Fri, Jun 9, 2017 at 12:36 PM, Day, Chuck wrote:
>>Define locale1 fr-FR
>
> It is not currently documented or rejected, but "Define" can't be
> wrapped in any of the normal configuration sections (only ifdefine,
> ifmodule, etc. ca
You'll need to provision libuuid and rebuild apr[-util] - a required
prerequisite for httpd.
On May 31, 2017 2:25 PM, "Joseph, Anselm" wrote:
> Thank you all for your replies.
>
> So I got back on the horse and installed latest APRs and PCRE, then ran
> configure again as follows:
>
> CC='gcc' C
There is little activity on mod_fcgid because it works. There has been talk
of tagging 2.3.10 at some point for very minor fixes.
Mod_proxy_fcgi is a viable alternative, and offers the ability to load
balance, but managing the process pool of available fcgi workers is
offloaded from httpd and beco
You really need to approach your package maintainer, I picked up
nghttp2 around that same point a year ago and never had an issue.
Anything to do with rpm installs is on the maintainer, and has nothing
to do with this project, sorry we can't be of more help.
On Sun, Mar 12, 2017 at 3:12 PM, John
What you are seeing is correct behavior, DocumentRoot is an absolute
path, whether you have specified this or not. If httpd sees an incomplete
path, it is going to work out an absolute path from the ServerRoot If it
appends the default and cannot establish a full path, you will receive
the indicate
There is a wealth of information in the build/ and build-1/ (APR)
subdirectories about
the compiler and linker choices that were used to create a build, if
they are preserved.
On Tue, Feb 7, 2017 at 8:38 AM, Chunduru, Krishnachaithanya
wrote:
> Hi Eric,
>
> Thanks for your reply.
>
> Actually th
Hi Eric,
Can you please explain how to load the new one at runtime?
Thanks!
Bill
On 1/7/2017 8:08 PM, Eric Covener wrote:
You often have to take efforts to load the new one at runtime, too
-
To unsubscribe, e-mail: users-u
Hello,
I have created a custom version of Openssl v1.1 where I am testing a new
cipher algorithm. I now wish to integrate and test in Apache HTTP. Where
in the source code do I need update in order to get Apache HTTP to
recognize the new cipher? I can list the new cipher using the "openssl
ci
https://lists.apache.org/list.html?annou...@httpd.apache.org:lte=1y:Httpoxy
was the first release addressing the question by httpd project.
Announce@ lists are used to broadcast release availability, making them
less than ideal channels for this foundation-wide response;
https://www.apache.org/s
There is a very recent skeleton on the wiki...
https://wiki.apache.org/httpd/WindowsTrunkCompilation
Aside from obtaining a release tarball, it is more straightforward than
using the msvc studio build schema.
On Nov 3, 2016 15:42, "Robert Ramoutar" wrote:
>
> Hello all,
>
>
> I have been tasked
Advisory: Apache Software Foundation Projects and "httpoxy" CERT VU#797896
Canonical URL: https://www.apache.org/security/asf-httpoxy-response.txt
Publication: v1.0 18 July 2016
Audience
This Advisory is directed to HTTP web server administrators and users of
the software indicated b
This is a dev@ level regression, sharing with that list. Please confirm you
are using httpd's own rpm. If not, the specific --enable-modules provided
for your rpm.spec file may be at issue.
On Jul 17, 2016 3:45 AM, "kohmoto" wrote:
> I tried to rpmbuild the former version httpd-2.4.20.tar.bz2 in
There was a well-documented binary breakage in 1.0.2g that has already
been fixed in their source repository for the next openssl upgrades.
That fix is here;
https://github.com/openssl/openssl/commit/133138569f37d149ed1d7641fe8c75a93fded445
On Mon, Mar 14, 2016 at 12:05 PM, Ron Hawkins wrote:
Sounds like you have mis-structured the config. Per servername - each can
and should have its own cert and will be selected via SNI. If there are
subadmins beneath each vhost section #include those snippets and they all
still fall within the given host name.
On Feb 1, 2016 11:21 AM, "Felipe Gaspe
Precisely. We are likely to be switching mailing list mgmt platforms very
soon, with luck we can preserve the subscribed address in such a way that
unsubscribing users is less of a hassle. Right now the embedded
list-unsubscribe fails to suggest the specific email address that needs to
be unlinke
anish, there is an offer for new translations of httpd that
we would love proof-reading help with, if you are interested. Please join
up with d...@httpd.apache.org if you would like to help review translated
docs pages!
Cheers,
Bill
-- Forwarded message --
From: William A Ro
Mod_proxy_fcgi + php-fpm or mod_fcgid with php fcgi sapi should both be
equivalent when tuned correctly.
Your only option for running php in process efficiently is to use the
non-threadsafe php in the httpd preform module. Your only option for
running httpd efficiently is the event, or at least t
On Wed, Dec 16, 2015 at 4:34 PM, Christopher Schultz <
ch...@christopherschultz.net> wrote:
>
>RedirectMatch ^/foo(/)?$ /foo/someplace_specific.html
>RedirectMatch ^/foo/index.html$ /foo/someplace_specific.html
>ProxyPass /foo/index.html !
>ProxyPass /foo/ http://localhost:8009/foo
On Tue, Dec 15, 2015 at 2:34 PM, Mike Pastore wrote:
> Hi folks,
>
> I believe I've found a buffer overrun affecting (at least) Apache 2.4.7
> and 2.4.17. I don't know enough about this sort of thing to determine how
> serious it is and whether or not it is a potential security vulnerability.
> I
It's been too many years since I and others have looked at 2.4.7, if you
can try this on a modern release of httpd and share those error logs, be
glad to review.
Bill
On Dec 10, 2015 10:40 AM, "LVDave" wrote:
> I have an Apache2 install (v2.4.7) running on Ubuntu 14.04 (32bit)
> that had been wo
On Tue, Dec 8, 2015 at 10:45 AM, Ron Croonenberg wrote:
> I forgot, is there a "standard way" to create an rpm so I can install the
> binaries somewhere?
>
Well, all the major linux distributions have their own forks, their own
'one right
way' to package rpm/deb/etc, but have a look in the buil
On Dec 7, 2015 11:36 PM, "Marat Khalili" wrote:
>>
>> Everything *after* that handshake, in cleartext, is open for inspection
or for manipulation
>
> Are you sure about the manipulation part? Why do you think encryption
helps here then?
To turn the question around, what gives you the suggestion t
1 - 100 of 1033 matches
Mail list logo
